Aggregator

CVE-2024-56570 | Linux Kernel up to 6.12.3 ovl_dentry_weird stack-based overflow (Nessus ID 214457 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.3. This affects the function ovl_dentry_weird. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2024-56570. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56550 | Linux Kernel up to 6.12.3 arch_stack_walk_user_common memory corruption (Nessus ID 230813 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.12.3. This affects the function arch_stack_walk_user_common. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2024-56550. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56551 | Linux Kernel up to 6.6.63/6.12.3 AMD GPU drm_sched_entity_flush use after free (Nessus ID 214781 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.6.63/6.12.3. This vulnerability affects the function drm_sched_entity_flush of the component AMD GPU. The manipulation leads to use after free. This vulnerability was named CVE-2024-56551. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56549 | Linux Kernel up to 6.11.10/6.12.1 cachefiles anon_fd null pointer dereference (Nessus ID 214250 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.11.10/6.12.1. This affects the function anon_fd of the component cachefiles. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-56549. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56548 | Linux Kernel up to 6.12.1 hfsplus use after free (Nessus ID 214457 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.12.1. This vulnerability affects unknown code of the component hfsplus. The manipulation leads to use after free. This vulnerability was named CVE-2024-56548. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56542 | Linux Kernel up to 6.11.10/6.12.1 AMD Display drivers/gpu/drm/drm_mm.c memory leak (Nessus ID 216943 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability was found in Linux Kernel up to 6.11.10/6.12.1 and classified as critical. This issue affects some unknown processing of the file drivers/gpu/drm/drm_mm.c of the component AMD Display. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2024-56542. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56543 | Linux Kernel up to 6.6.63/6.11.10/6.12.1 ath12k dp_rx.c rx_tid::ab stack-based overflow (Nessus ID 216493 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.63/6.11.10/6.12.1. It has been rated as critical. Affected by this issue is the function rx_tid::ab of the file drivers/net/wireless/ath/ath12k/dp_rx.c of the component ath12k. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2024-56543. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-56540 | Linux Kernel up to 6.11.10/6.12.1 accel ivpu_send_receive_internal null pointer dereference (Nessus ID 216493 / WID-SEC-2024-3762)

Vuldb Updates
1 month 4 weeks ago
A vulnerability was found in Linux Kernel up to 6.11.10/6.12.1. It has been declared as critical. Affected by this vulnerability is the function ivpu_send_receive_internal of the component accel. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-56540. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2008-4911 | Chattaitaliano Istant-Replay read.php data code injection (EDB-31655 / XFDB-41844)

Vuldb Updates
1 month 4 weeks ago
A vulnerability was found in Chattaitaliano Istant-Replay. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file read.php. The manipulation of the argument data leads to code injection. This vulnerability is known as CVE-2008-4911. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

微软测试通过安卓手机远程访问Windows 11剪切板以及可以远程锁定PC

不安全
1 month 4 weeks ago
微软测试通过安卓手机远程访问 Windows 11 剪切板并支持远程锁定 PC。剪切板同步为单向传输(PC 到安卓),可轻松传输文本、链接和图片等内容。该功能借助 Phone Link 应用实现跨设备连接,并允许查看 PC 剪切板历史记录及提高安全性。这些新功能正在 Insider 预览版中测试,预计数月后发布正式版。

Most data breaches have unknown causes as transparency continues to fall

Help Net Security
1 month 4 weeks ago

The Identity Theft Resource Center (ITRC) reports 1,732 publicly disclosed data breaches in H1 2025, marking a 5% increase over the same period in 2024. The ITRC could track a record number of compromises in 2025 if the current data breach trend continues through Q3 and Q4. Data breaches show no signs of slowing in H1 2025 The number of victim notices in H1 2025 (165,745,452) represents only 12% of the victim notices issued by … More →

The post Most data breaches have unknown causes as transparency continues to fall appeared first on Help Net Security.

Help Net Security

黑客在PoisonSeed网络钓鱼攻击中降低FIDO2多因素认证强度

嘶吼
1 month 4 weeks ago

PoisonSeed网络钓鱼活动通过滥用WebAuthn中的跨设备登录功能来绕过FIDO2安全密钥保护,诱骗用户同意来自虚假公司门户的登录认证请求。

众所周知,PoisonSeed攻击者利用大规模网络钓鱼攻击来进行金融欺诈。在过去,分发包含加密种子短语的电子邮件用于耗尽加密货币钱包。

在Expel最近观察到的网络钓鱼攻击中,PoisonSeed攻击者并没有利用FIDO2的安全漏洞,而是滥用了合法的跨设备身份验证功能。

跨设备认证是一种WebAuthn功能,允许用户使用另一台设备上的安全密钥或认证应用程序在一台设备上登录。身份验证请求不需要物理连接,比如插入安全密钥,而是通过蓝牙或二维码扫描在设备之间传输。

这种攻击首先将用户引导到一个仿冒企业登录门户的网络钓鱼网站,比如Okta或Microsoft 365。当用户向门户输入凭据时,该活动使用中间对手(AiTM)后端,使用提交的凭据在合法登录门户上实时静默登录。

攻击中的目标用户通常会使用他们的FIDO2安全密钥来验证多因素身份验证请求。但是,网络钓鱼后端会告诉合法登录门户使用跨设备身份验证进行身份验证。

这将导致合法门户生成QR码,该QR码被传输回网络钓鱼页面并显示给用户。当用户使用智能手机或身份验证应用扫描这个二维码时,它就会批准攻击者发起的登录尝试。

PoisonSeed攻击流绕过FIDO2保护

这种方法允许攻击者发起依赖于跨设备身份验证而不是用户的物理FIDO2密钥的登录流,从而有效地绕过了FIDO2安全密钥保护。

Expel说,这种攻击并没有利用FIDO2实现中的漏洞,而是滥用了降低FIDO密钥身份验证过程的合法功能。为了降低风险,Expel建议采取以下防御措施:

·限制允许用户登录的地理位置,并为个人旅行建立注册流程。

·定期检查来自未知地点的未知FIDO密钥和不常见的安全密钥品牌的注册。

·考虑强制基于蓝牙的身份验证作为跨设备身份验证的要求,这将大大降低远程网络钓鱼攻击的有效性。

Expel还观察到一个单独的事件,一个威胁者在通过被认为是网络钓鱼的方式破坏了一个账户并重置了密码后,注册了自己的FIDO密钥。然而,这种攻击不需要任何欺骗用户的方法,比如QR码。

这种攻击突出了威胁者如何通过欺骗用户完成登录流程来绕过使用安全密钥进行物理交互的需要,从而找到绕过抗网络钓鱼认证的方法。

胡金鱼

热浪下欧洲软化对空调的抵制

Solidot
1 month 4 weeks ago
6 月和 7 月份席卷西欧的创纪录热浪引发了安装空调相关的政治斗争。欧洲因为地理位置通常不是太热,不需要安装空调。但气候变化让欧洲成为暖化最快的大陆,自 1980 年代以来欧洲的暖化速度是全球平均水平的两倍。在最新的热浪期间,法国逾 1000 所学校因缺乏空调而部分或全部关闭。右翼政党要求大规模安装空调,而政府官员则担心大规模安装空调会让城市升温,加剧热浪。

Managed ad